Lucene search
+L

381 matches found

bdu_fstec
bdu_fstec
added 2015/06/05 12:0 a.m.9 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software arises from the ability to access resources through incompatible types. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by manipulating data types...

10CVSS6AI score0.06744EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2015/06/05 12:0 a.m.5 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software arises from the ability to access resources through incompatible types. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by manipulating data types...

10CVSS6AI score0.14642EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2015/06/05 12:0 a.m.6 views

The vulnerability of the Adobe AIR software platform allows a perpetrator to execute arbitrary code.

The vulnerability of the Adobe AIR software platform arises from the ability to access resources through incompatible types. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by manipulating data types...

10CVSS6AI score0.06744EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2015/06/05 12:0 a.m.5 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software arises from the ability to access resources through incompatible types. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by manipulating data types...

10CVSS6AI score0.06744EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2015/05/22 12:0 a.m.7 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software is related to access to resources through incompatible types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.07788EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2015/05/22 12:0 a.m.4 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software is related to access to resources through incompatible types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.07788EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2015/05/22 12:0 a.m.6 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software is related to access to resources through incompatible types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.07788EPSS
Exploits0References4Affected Software1
bdu_fstec
bdu_fstec
added 2015/05/22 12:0 a.m.6 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software is related to access to resources through incompatible types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.07788EPSS
Exploits0References4Affected Software1
nessus
nessus
added 2015/04/23 12:0 a.m.39 views

Debian DLA-198-1 : wireshark security update

The following vulnerabilities were discovered in the Squeeze's Wireshark version : CVE-2015-2188 The WCP dissector could crash CVE-2015-0564 Wireshark could crash while decypting TLS/SSL sessions CVE-2015-0562 The DEC DNA Routing Protocol dissector could crash CVE-2014-8714 TN5250 infinite loops...

5CVSS6.7AI score0.04422EPSS
Exploits0References18
debian
debian
added 2015/04/22 9:45 a.m.35 views

[SECURITY] [DLA 198-1] wireshark security update

Package : wireshark Version : 1.8.2-5wheezy15deb6u1 CVE ID : CVE-2015-2191 CVE-2015-2188 CVE-2015-0564 CVE-2015-0562 CVE-2014-8714 CVE-2014-8713 CVE-2014-8712 CVE-2014-8711 CVE-2014-8710 CVE-2014-6432 CVE-2014-6431 CVE-2014-6430 CVE-2014-6429 CVE-2014-6428 CVE-2014-6423 CVE-2014-6422 The followin...

5CVSS6.8AI score0.04422EPSS
Exploits0
nessus
nessus
added 2015/04/22 12:0 a.m.39 views

Ubuntu 14.04 LTS : MySQL vulnerabilities (USN-2575-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2575-1 advisory. Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to...

5.7CVSS6.2AI score0.09984EPSS
Exploits0References9
osv
osv
added 2015/04/14 12:0 a.m.38 views

DLA-198-1 wireshark - security update

Bulletin has no description...

5CVSS6.2AI score0.04422EPSS
Exploits0
osv
osv
added 2015/02/09 11:59 a.m.4 views

UBUNTU-CVE-2015-1558

Asterisk Open Source 12.x before 12.8.1 and 13.x before 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of service file descriptor consumption via an SDP offer containing only incompatible codecs...

3.5CVSS5.8AI score0.0303EPSS
Exploits0References5
osv
osv
added 2015/02/09 11:59 a.m.2 views

DEBIAN-CVE-2015-1558

Asterisk Open Source 12.x before 12.8.1 and 13.x before 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of service file descriptor consumption via an SDP offer containing only incompatible codecs...

3.5CVSS6.7AI score0.0303EPSS
Exploits0References1
securityvulns
securityvulns
added 2015/02/02 12:0 a.m.46 views

AST-2015-001: File descriptor leak when incompatible codecs are offered

Asterisk Project Security Advisory - AST-2015-001 Product Asterisk Summary File descriptor leak when incompatible codecs are offered Nature of Advisory Resource exhaustion Susceptibility Remote Authenticated Sessions Severity Major Exploits Known No Reported On 6 January, 2015 Reported By Y Ateya...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2015/02/02 12:0 a.m.47 views

Asterisk DoS

Crash on empty WebSocket frame. File descriptor leak on incompatible codecs...

5CVSS1.5AI score0.09525EPSS
Exploits0References2Affected Software1
nessus
nessus
added 2015/01/23 12:0 a.m.33 views

Ubuntu 14.04 LTS : MySQL vulnerabilities (USN-2480-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2480-1 advisory. Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to...

7.5CVSS6.6AI score0.10066EPSS
Exploits0References7
osv
osv
added 2015/01/22 2:29 p.m.5 views

USN-2480-1 mysql-5.5 vulnerabilities

Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to 5.5.41. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the...

7.5CVSS6.5AI score0.10066EPSS
Exploits0References7
fedora
fedora
added 2015/01/06 6:16 a.m.79 views

[SECURITY] Fedora 19 Update: python3-3.3.2-11.fc19

Python 3 is a new version of the language that is incompatible with the 2.x line of releases. The language is mostly the same, but many details, especi ally how built-in objects like dictionaries and strings work, have changed considerably, and a lot of deprecated features have finally been remov...

9.8CVSS3.6AI score0.247EPSS
Exploits7
freebsd
freebsd
added 2015/01/06 12:0 a.m.23 views

asterisk -- File descriptor leak when incompatible codecs are offered

The Asterisk project reports: Asterisk may be configured to only allow specific audio or video codecs to be used when communicating with a particular endpoint. When an endpoint sends an SDP offer that only lists codecs not allowed by Asterisk, the offer is rejected. However, in this case, RTP por...

3.5CVSS6.4AI score0.0303EPSS
Exploits0References1
Rows per page
Query Builder